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1. INTRODUCTION 

Biometric authentication technique includes of uniquely verified people by using their behavioral or 
physical features, such as iris or face. The popularity of biometric system is quite high as it is a more trusted 
technique than systems that are based on password security. Since biometric systems are difficult to copy and 
no passwords are required to remember [1]. The biometric based authentication obtains data from an 
individual. Features set are extracted, and are compared to the features stored in the server database in which 
the action is executed based on the result of the comparison algorithm. Biometric recognition system 
provides a natural and reliable solution to identification problem [2]. Since the information of biometric is 
permanent and immutable, this information can be used to create a verification system. Nevertheless, if the 
biometric information is leaked, it is difficult to exchange the leaked biometric information. Consequently, 
the vital information requires ways for storing safely [3], [4]. In biometric authentication process, templates 
play a vital role. At first, biometric traits such as fingerprints and iris are captured by the sensor, using some 
feature transformation technique to extract the feature and convert it into digital form. This digital 


Journal homepage: http://ijece.iaescore.com 


340 m) ISSN: 2088-8708 


information is known as biometric template which is stored in the database. Later on, the template is used in 
authentication step [5]. 

The template that is kept in the database may be exposed to eavesdropping which makes the 
protecting of it a challenging task in the biometric system. Because of these reasons, many researches used 
cryptography, stenography and watermarking for biometric data and template protection in the system [6]. 
Despite the biometrics advantages as an approach of identity verification, some concerns are raised because 
of the high sensitivity of biometric data: Information leakage poses a serious privacy threat. To solve these 
problems, secured templates must be kept or interchange for identification purposes only [7]. 

The proposed secret sharing system has generated shares which overcome the problem in traditional 
methods. The two generated shares can be hiding randomly in selected images from the public database, it 
then can store one of shares in the system database giving the other share to an authorised person (user). The 
security of system would be improved, since the attacker must have the ability to access the two shares. The 
rest of paper is structured such as following: In section 2, the related works is reviewed. Section 3 the 
proposed system is presented in detail. The experiential results are showed in section 4. Finally, the 
conclusions are listed in section 5. 


2. RELATED WORKS 

A different approach is offered to protect templates in business along with the goal of protecting 
instability, eliminating access, and being unable to link to a compromise. Revenkar et al. [5] applied visual 
cryptography to add extra layers of authentication to secure the iris template. Sonali et al. [8] proposed a 
system that divides the template of finger prints into different shares (two shares) using visual cryptography 
techniques, keeping one with the identity person and the other one stored in a database. Ankita et al. [9] 
proposed a biometric privacy using visual cryptography with pixel sharing, using fingerprint images where a 
private fingerprint image is separated into two host images and stored in a two-separate database. Sunhant et 
al. [10] used visual cryptography to divide original images into different images but the shares image does 
not guide any information about original one, and for added more security by using asymmetric 
watermarking. Rupali et al. [11] proposed that centraled database will be split by using secret sharing across 
different locations, this will reduce threats against the centralised database and reducing the size of database. 
Patel et al. [12] illustrated that it is desirable to modify biometric patterns to prevent the theft of them through 
transforming them through revocable and noninvertible transformations to create cancelable biometric 
templates. Ashish and Sinha [13] proposed an encryption approach for template security. A template 
protection scheme, which has proven safety and acceptable reputation, has remained elusive. Elena and 
Aikaterini [14] presented the most challenging concern that must be considered while layout security and 
privacy protocols for the authentication of biometric. They also described the chief threats against privacy- 
preserving biometric authentication systems and provided guidance on possible countermeasures to design 
secure and privacy-preserving biometric authentication protocols. Ashwaq and Zina [15] introduced a 
method for template protection which is merged between the chaotic shift keying (CSK) and visual 
cryptography (VC). They employed the CSK modulation for biometric template coding. Then, used (2, 2) 
VC for shares generation, these shares are stored in two separate servers of the database and then the identity 
of the private template does not detect through single share. 

In 2018 [16] a method based on visual cryptography is presented to keep the biometric iris template. 
Hikal et al. [17] introduced an encryption method for preserving security to palm print image using hybrid 
chaotic maps. The proposed method performed a mixture of different chaos maps for a specific choice of the 
control parameters. The security analysis results confirmed the strengths of the suggested cryptosystem 
various attacks. Ashwaq and Suhad [18] suggested a (r, n) multiple secret image sharing using discrete Haar 
wavelet transform to encode m secret images into n noisy images that are stored on different servers. To 
retrieve m secret images r noise images are in demand. Wadood et al. [19] presented a multimodal approach 
to biometric template protection with fusion at score level using the templates of fingerprint and face. This 
approach includes two stages, enrollment and verification stages. During the enrollment stage, discrete 
wavelet transform (DWT) is performed on the face images embedding the features of fingerprint. Then, the 
inverse DWT is applied to get the watermarked image. Lastly, a hyper-chaotic map is employed to generate a 
key stream to cipher a watermarked image by block cipher method. Jae and Ik [20] introduced two 
cancellable schemes for template generation. The first scheme is to enhance the accuracy of the Dwivedi et 
al. method by the partial sort technique, and the second scheme is alignment-free which enhances the 
effectiveness of the Dwivedi et al. method. The suggested schemes fulfill four requests of the cancellable 
template generation which are irreversibility, revocability, diversity, and efficiency. Manisha and Kumar in 
2020 [21] proposed a structure for production Cancellable biometric templates by visual secret sharing. In the 
proposed scheme, n different shares corresponding to a single biometric image are generated with the 
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assistance of n-1 other images called cover images. The generated Secret Shares are stored in a distributed 
manner instead of the original Biometric image. Shafiqua and Muddannavar [22] presented schemes to solve 
the problem of biometric security. At first implemented a watermarking to protect the integrity of biometric 
images. In particular, a watermark text image which accommodates the bio data of the person to be 
authenticated, is embedded in the iris image by interchanging the middle band coefficients using discrete 
cosine transform (DCT). At the second the VC technique is employed to safeguard the iris template by 
decomposing the original iris template into two shares. 


3. PROPOSED SYSTEM 

The proposed system emphasises on the preserved iris template by combining the secret image 
sharing and hiding approaches. The main component of the algorithm is employed (2, 2) secret image sharing 
to construct two shares, then hidden into two meaningful image shares which are kept later in separated 
database servers. If the hidden share is extracted, the template may not be revealed without the two shadows 
that are provided at the same time. The identity of the template cannot be revealed by one of these shares. 
Biometric model protection technologies are able to offer a solution to the vulnerabilities that threaten the 
biometric template. There are two modules in the proposed system: enrollment module and authentication 
module. 


3.1. Enrollment module 

The required biometric images are captured for authorised users to access the secure resource and 
then stored in the database. Enrollment module consists of three sub stages: i) generating template module 
that is a result of iris recognition system, ii) construction shares module and iii) hiding shares module. 
Figure 1 depicts the components of the proposed enrollment module. 
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Figure 1. Enrolment module 


3.2. Iris recognition system 

The generating templates included the pre-processing, segmentation and extraction of feature 
techniques which have been essential to extract the iris characteristics. This was providing for the enrollment 
and then it is return to the next step in the proposed system. Figure 2 depicts the block diagram of generating 
templates. 

Iris localisation is an active stage for iris recognition system; it is related to the exact localisation of 
iris borders. it has been decided to use daugman’s integro-differential operator for localisation. Daugman's 
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algorithm is based on applying an integro-differential operator to find the iris and pupil contour [23]. The 
normalisation is accomplished using daugman’s rubber sheet model [24] and the extraction of features is 
based on 1-D log gabor filter [25] to generate iris template. 


3.3. Construction shares module 

Current systems have included a single layer of validation for the biometric authentication system. 
Biometric templates are kept in a database and therefore are vulnerable to attack. The suggested system 
offers a double protection by an additional layer of validation to the templates stored in the database by using 
hybrid technologies. At this stage the generated secret templates will be encrypted into two shares. These 
shares appear as a noisy random set of pixels. The shares could be reformulated as natural images known as 
host images in the next step where each share is hiding into a fixed host image. The dealer generates two 
shadows, called S^ and S? from template T and verified image V as shown in Figure 3. The algorithm 2 
illustrated the construction shares steps. 


Template 


+ 


Figure 2. Iris recognition system 
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Figure 3 Construction shares 


Algorithm 2. Construction shares 

Input: 

T, V, // template and verified image binary images 
W, H // width and height 

Output: 

sa, S? 
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Stepl: compute the pixel value of S? share, using (1): 
For i=l to W 

For j=l to H 

Read two pixels from V and T 

Find pixel of share S*, utilising (1): 


S4 = |((V x 2+ Ty +1) mod 4) /2| (1) 
Step2: compute the pixel value of S? share, using (2): 
SH = |(V1 x 2 + Ty +) mod 2| (2) 


EndFor j 

EndFor i 

Step3: generate random sequence PixeOrd of length WxH based on bernoulli chaotic map [26] 
Step4: convert Sê and S? to 1D arrays of length WxH 

Step 5: apply pixels scrambling for S* such as following: 

For I=2: WxH 


PixeOrd = abs(fix(PixeOrd(l) x 10D'8Nu™)) (3) 


// DigNum=5 if size of T is 128x128 (16384) 
Sè (1I)=S* (PixeOrd) ; 

EndFor 

Reshape S* to 2D array 

Step6: repeat step 5 for SP 


The proposed share construction ensures that the generated shares are the same size of the original 
template and the verified images. On the other hand, they are like noisy images. These results indicate that 
they are capable to offer a solution to the vulnerabilities that compromises biometric templates. 


3.4. Hiding shares 

In this stage, two host images are selected from the public standard database. The Bernoulli chaotic 
map is employed to generate two random indices which are represented by the x’s and y’s coordinates. These 
generated coordinates are used to hide the bits of generated shares into two host images as presented in the 
following algorithm: 


Algorithm 3. Share hiding 

Input: 

Sa, S, // two shares 

W, H, // width and height of each shares 

HostImagei, HostImagez // two host images 

Output: 

StegoImagei, StegoImagez // two stego images 

Stepl: Convert the S? and SBP into two 1D sequences of length WxH 

Step2: Generate two Random Sequences based on Bernoulli chaotic map Seq: and Seqz. The Seqi 
is employed to become the Xs coordinates and other sequence Seqe is used as Ys 
coordinates. These generated coordinates are used as indices to hide the shares bits 

Step3: Repeat stepl to generate Seq3 and Seq, using different initial condition 

Step4: Convert the generated Seqi and Seq2 into integer using following formula: 


IntSeq, = abs((round (Seq, X 101) + 1)) mod 20 (4) 
// the range of IntSeqi=1,.., 20 
IntSeq, = abs((round (Seq, X 1001) + 1)) mod 240 (5) 


// the range of IntSeqe=1,.., 240 

Step5: repeat step4 to generate IntSeq3 and IntSeqza 

Step6: sort the two sequences IntSeq: and IntSeq2 in descending order 
Step7: hide the S* and SB in host images such as following: 
For I=1 to W 

For J=1 to H 

HostImagei (IntSeqi, IntSeq2)=S* (I, J) 

HostImagez (IntSeq3, IntSeqs)=S® (I, J) 

Increment ntSeqz2 

Increment ntSeqa 

Endfor J 

Increment IntSeqi 

Increment IntSeq;3 

Endfor I 
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3.5. Authentication module 

Throughout the authentication phase, a request to the server is sent from a trusted entity which then 
the corresponding share is sent to it. On the other hand, four sequences IntSeqı, IntSeq2, IntSeq3, and IntSeq4 
are generated at the receiver by using the same initial condition that is exploited at the transmitter to extract 
the bits of the $^ and S”. Finally, the original template T and verified image are recovered as shown in the 
algorithm 4. Figure 4 shows the authentication module. 
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Figure 4. Authentication module 


Algorithm 4. Template and verified image reconstruction 

Input: 

Sè, S®, // 2D array of binary 

W, H // width and height 

Output: 

T, V //original template and verified image 

Stepl: Generate random sequence PixeOrd of length WxH based on bernoulli chaotic map. 
Step 2: Apply pixels rescrambling for S* such as following: 

For I=2: WxH 


PixeOrd = abs(fix(PixeOrd (I) x 10°9%u™)) (6) 


/ DigNum=5 if size of T is 128x128 (16384) 
Sè (PixeOrd)=S* (I) 
EndFor 
Reshape S* to 2D array 
Step3: Repeat step 2 for S® 
Step4: For i=l to W 
For j=l to H 
Read two pixels from Sf and Sf 
Reconstruct pixel of template T using (7) 


T =|((S4x2- SE +3) mod 4) / 2| (7) 
Reconstruct pixel of Verified image using (8). 
V = |(S§ x2- S5 +3) mod2| (8) 


EndFor j 
EndFor i 
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4. RESULTS 

The visual quality (PSNR value) [27] of the stego images has been computed using (9). 
Figure 5(a)-(d) shows the secret images with 128x128 pixels and the corresponding generated shares SA and 
SB. The two cover images ‘Baboon’ and ‘Barbara’ with 512x512 pixels are used as host images as shown in 
Figure 5(e)-(f). Two shadow images are generated by algorithm 1 and then, the proposed system uses LSB 
method to hide each shadow image in the corresponding host image randomly using the random sequences 
that are generated by Bernoulli chaotic map. The experimental results are shown in Figure 6. 


2 


255 
PSNR = 10 log10 (a) (dB) (9) 


i=1 j= (10) 


Figure 7 shows the experimental results of hiding shares SA and SB that are generated from share 
construction stage and two stego images from UBIRIS v1 data set with 300x400 pixels. As seen, all PSNR 
values of the stego images are larger than 51 dB. It is clear that the proposed system has an advantage in 
achieving acceptable visual quality. 

Table 1 shows a comparison of the size for the original template T and verified image V with the 
constructed shares S“ and S® as shown in Figure 3. Table 2 depicts the cross correlation between constructed 
shadows and plain images (T and V). As noticed, the correlation coefficients are very small (C=O), which is 
recommended. The shadows are totally uncorrelated. 


(b) (a) 


PSNR=53.67 PSNR=54.44 


Figure 6. The generated stego images with the PSNR values 
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(c) (d) 


Figure 7. Shares constructing and hiding: (a) and (b) the generated shares, (c) and (d) the generated stego eye 
images with the PSNR values 51.45 dB, 51.67 dB respectively 


Table 1. Comparison of size 


Images Binary Images Size 
Original Template 19200 bits 
Verified Image 19200 bits 
s^ 19200 bits 
S? 19200 bits 


Table 2. Cross correlation between constructed shares and plain images 
Images s^ s? 
Template Image T -0.0003 -0.0033 
Verified Image V 0.0007 0.0002 


The chaotic signal is described by its initial condition’s sensitivity and the random behavior of the 
chaotic signals as well as its broadband spectrum, as it was thought that information could be efficiently 
hidden in chaos. Consequently, it is unattainable to foretell in the long term. This feature indicates that two 
signals from the same chaotic systems with little change in initial conditions diverge with increasing time, 
and it will become unrelated signals with each other, as illustrated in Figure 8. 
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Figure 8. Initial conditions sensitivity 


Figure 9 depicts that Burnoli chaos generator is exhibiting good autocorrelation properties, thus it is 
suitable for using in security applications. Figures 10 and 11 show the auto and cross-correlation between SA 
and the original template respectively. Figures 10 and 11 depict that the outputs characteristics are like to 
those of random additive white gaussian noise (AWGN). 
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Figure 9. Performance of auto and cross correlation for burnoli chaos generator 
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Figure 10. Cross-correlation between generated SA and original template 
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Figure 11. Auto correlation between coded and plain template 


5. CONCLUSION 

The proposed secret sharing technique is used to protect the template of the iris in the database and 
offer an additional layer of authentication for the existing iris authentication system. It is preserved the 
security of iris templates stored in a central database is maintained with robust data encryption technology 
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based on a chaotic map. The template is divided into two shares using (2, 2) secret sharing system. One is 
kept in the database and other with the user as the ID card. Security is provided to the iris template because 
using the only one share which is, hidden in meaningful image can be then stored in the database. No 
information can be retrieved for the enrolled eye image. In this case access from an unauthorised user is 
avoided. This system will be more secure and reliable in security-critical applications. The proposed secret 
sharing scheme allows the original iris template to be restored as soon as shadows are available, and thus 
does not impede iris recognition performance. An additional layer of security is presented to the iris template 
because the original template cannot be revealed even if any of the shares in the database or smart card is 
compromised. 
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